From 9dfba1e70866fb2bb551678f6e04b8ddfd5467e1 Mon Sep 17 00:00:00 2001 From: Starla Insigna Date: Fri, 2 Oct 2009 19:04:20 -0400 Subject: Fixed HTML Entites problem When the poll escaping problem was fixed, a whole ton of other similar bugs were found which were also fixed here. Fixes #115 --- admin/newPost.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'admin/newPost.php') diff --git a/admin/newPost.php b/admin/newPost.php index eb6b4e0..32e7aa2 100644 --- a/admin/newPost.php +++ b/admin/newPost.php @@ -145,7 +145,7 @@ if (isset($_GET['submit'])) if ($type != 'drafts') $template->add('TAGSDISABLED', ' readonly="readonly"'); } - $template->add('TITLEVALUE', $_POST['title']); + $template->add('TITLEVALUE', htmlentities($_POST['title'])); $template->add('TEXTVALUE', $_POST['text']); $template->add('TAGSVALUE', $_POST['tags']); $template->add(strtoupper($_POST['type']) . 'SELECTED', ' checked="checked"'); -- cgit 1.4.1